Chris Buechler has announced the release of pfSense 2.3.2, a new stable version in the 2.3 branch of the project's FreeBSD-based operating system for firewalls and routers: "We are happy to announce the release of pfSense software version 2.3.2. This is a maintenance release in the 2.3.x series, bringing a number of bug fixes. It includes fixes for 60 bugs, 8 features and 2 to-do items completed. As always, you can upgrade from any prior version directly to 2.3.2. While nearly all of the common regressions between 2.2.6 and 2.3-RELEASE have been fixed in subsequent releases, the following still exist: IPsec IPComp does not work and is disabled by default, however in 2.3.1 it is automatically not enabled to avoid encountering this problem; IGMP Proxy does not work with VLAN interfaces and possibly other edge cases, this is a little-used component; those using IPsec and OpenBGPD may have non-functional IPsec unless OpenBGPD is removed." Here is the full release announcement, with further information available on the features and changes page. Download: pfSense-CE-2.3-RELEASE-amd64.iso.gz (297MB, SHA256), pfSense-CE-2.3.2-RELEASE-i386.iso.gz (282MB, SHA256). Also available from OSDisc.

Chris Buechler has announced the release of pfSense 2.3.1, an updated version of the project's FreeBSD-based operating system designed for firewalls and routers. This is minor bug-fix release, although it also includes a number of important security updates: "We are happy to announce the release of pfSense software version 2.3.1. This is a maintenance release in the 2.3.x series, bringing a number of bug fixes, two security fixes in the GUI, as well as security fixes for OpenSSL, OpenVPN and FreeBSD atkbd and sendmsg. This release includes a total of 103 bug fixes. 79 regressions in 2.3 have been fixed, mostly minor issues in the new GUI. Several of these are significant issues, and have resolved nearly all the post-upgrade problems encountered in 2.3-RELEASE. 24 issues affecting 2.2.x and prior versions have also been fixed." Read the release announcement and check out the features and changes page for further information. Download: pfSense-CE-2.3-RELEASE-amd64.iso.gz (296MB, SHA256), pfSense-CE-2.3.1-RELEASE-i386.iso.gz (281MB, SHA256).

Chris Buechler has announced the availability of pfSense 2.3. The new release of this FreeBSD-based firewall operating system includes a number of new changes to its web interface and fixes several bugs from previous releases. "We are happy to announce the release of pfSense software version 2.3. The most significant changes in this release are a rewrite of the webGUI using Bootstrap, and the underlying system, including the base system and kernel, being converted entirely to FreeBSD pkg. The pkg conversion enables us to update pieces of the system individually going forward, rather than the monolithic updates of the past. The webGUI rewrite brings a new responsive look and feel to pfSense requiring a minimum of resizing or scrolling on a wide range of devices from desktop to mobile phones. For the highlights, check out the features and highlights video. Past blog posts have covered some of the changes, such as the performance improvements from tryforward and the webGUI update." Further information can be found on the project's features and changes page. Download: pfSense-CE-2.3-RELEASE-amd64.iso.gz (296MB, SHA256). Also available from OSDisc.

Chris Buechler has announced the launch of a release candidate for pfSense 2.3. The development snapshot is available for testing and features a number of important changes, particularly with regards to package management: "We are proud to announce pfSense software version 2.3 Release Candidate is now available! The most significant changes in this release are a rewrite of the webGUI utilizing Bootstrap, and the underlying system being converted entirely to FreeBSD pkg (including the base system and kernel). The pkg conversion enables us to update pieces of the system individually going forward, rather than the monolithic updates of the past. Further information can be found in the project's release announcement and Features and Changes document. Download: pfSense-CE-2.3-RC-amd64.iso.gz (296MB, SHA256).

Chris Buechler has announced the release of pfSense 2.2.6, an updated build of the project's FreeBSD-based operating system made for firewalls and routers. This release is largely a security update to fix issues with the software's browser-based user interface and several recent OpenSSL vulnerabilities, while it also upgrades the base system to the latest FreeBSD version: "pfSense software version 2.2.6 is now available. This release includes a few bug fixes and security updates. Security fixes and errata: webgui - local file inclusion vulnerability in the pfSense WebGUI; captiveportal - SQL injection vulnerability in the pfSense captive portal logout; webgui - multiple XSS and CSRF vulnerabilities in the pfSense WebGUI; updated to FreeBSD 10.1-RELEASE-p25; openssl - multiple vulnerabilities in OpenSSL; updated strongSwan to 5.3.5; includes fix for CVE-2015-8023 authentication bypass vulnerability in the eap-mschapv2 plugin. As always, you can upgrade from any previous version straight to 2.2.6. For those already running any 2.2.x version, this is a low-risk upgrade. For those on 2.1.x or earlier versions, there are a number of significant changes which may impact you. Pay close attention to the 2.2 upgrade notes for the details." Read the full release announcement for further details. Download: pfSense-LiveCD-2.2.6-RELEASE-amd64.iso.gz (99.2MB, SHA256).

Chris Buechler has announced the release of a new version of pfSense, an operating system designed for use in firewalls. The new release, pfSense 2.2.5, arrives on the project's 11th birthday and contains mostly bug fixes for previous versions. "pfSense software version 2.2.5 is now available. This release includes a number of bug fixes and some security updates. Today is also the 11 year birthday of the project. While work started in late summer 2004, the domains were registered and the project made public on November 5, 2004. Thanks to everyone that has helped make the project a great success for 11 years. Things just keep getting better, and the best is yet to come. Security fixes and errata: webgui - multiple stored XSS vulnerabilities in the pfSense WebGUI. The complete list of affected pages and fields is listed in the linked SA." People who were running an earlier version of pfSense in the 2.2.x series should be able to upgrade smoothly to the latest version. "As always, you can upgrade from any previous version straight to 2.2.5. For those already running any 2.2.x version, this is a low risk upgrade. For those on 2.1.x or earlier versions, there are a number of significant changes which may impact you." Further information can be found in the project's release announcement. Download: pfSense-LiveCD-2.2.5-RELEASE-amd64.iso.gz (99.2MB, SHA256).

Chris Buechler has announced the release of pfSense 2.2.4, a FreeBSD-based firewall solution. The new release mostly includes bug fixes and security updates. The bug fixes include patches to prevent cross-site scripting attacks against the web interface, a fix for a TCP resource exhaustion attack and enhancements to prevent file corruption during unclean shutdowns. Buechler points out that a recent patch to FreeBSD's OpenSSL implementation was not needed as pfSense did not ship the vulnerable version of the OpenSSL software. "As always, you can upgrade from any previous version straight to 2.2.4. For those already running any 2.2.x version, this is a low risk upgrade. This is a high priority upgrade for those using IPsec on 2.2.x versions. For those on 2.1.x or earlier versions, there are a number of significant changes which may impact you." The release announcement has more details and a full list of changes since the last version of pfSense can be found in the New Features and Changes document. Download: pfSense-LiveCD-2.2.4-RELEASE-amd64.iso.gz (99MB, SHA256).

Chris Buechler has announced the release of pfSense 2.2.3, a security and bug-fix update of the specialist operating system designed for firewalls and routers, based on FreeBSD: "pfSense software version 2.2.3 release is now available, bringing a number of bug fixes and some security updates. Security fixes: multiple XSS vulnerabilities in the pfSense WebGUI, the complete list of affected pages and fields is large and all are listed in the linked SA; multiple OpenSSL vulnerabilities (including Logjam). The bug fixes and changes in this release are detailed here. As always, you can upgrade from any previous version straight to 2.2.3. For those already running any 2.2x version, this is a low-risk upgrade. This is a high-priority upgrade for those using IPsec on 2.2x versions. For those on 2.1.x or earlier versions, there are a number of significant changes which may impact you. Pay close attention to the 2.2 upgrade notes for the details." Here is the brief release announcement. Download links: pfSense-LiveCD-2.2.3-RELEASE-amd64.iso.gz (83.2MB, SHA256), pfSense-LiveCD-2.2.3-RELEASE-i386.iso.gz (78.5MB, SHA256).

Chris Buechler has announced the release of pfSense 2.2.2, the latest update of the FreeBSD-based operating system made for firewalls and routers, providing several security fixes: "pfSense software version 2.2.2 release is now available, bringing a number of bug fixes and a couple low-risk security updates that don't apply to most users. This release includes two low-risk security updates. FreeBSD-SA-15:09.ipv6 - denial of Service with IPv6 router advertisements. Where a system is using DHCPv6 WAN type, devices on the same broadcast domain as that WAN can send crafted packets causing the system to lose IPv6 Internet connectivity. FreeBSD-SA-15:06.openssl - multiple OpenSSL vulnerabilities. Most aren't applicable, and the worst impact is denial of service. As always, you can upgrade from any previous version straight to 2.2.2. For those already running any 2.2x version, this is a low-risk upgrade. This is a high priority upgrade for those using IPsec on 2.2x versions." See the release announcement for full details. Download: pfSense-LiveCD-2.2.2-RELEASE-amd64.iso.gz (83.2MB, SHA256), pfSense-LiveCD-2.2.2-RELEASE-i386.iso.gz (78.4MB, SHA256).

Chris Buechler has announced the release of pfSense 2.2.1, a security and bug-fix update of the project's FreeBSD-based specialist operating system for firewalls and routers: "pfSense software 2.2.1 release is now available, bringing a number of bug fixes and some security fixes. Security fixes: pfSense-SA-15_02.igmp - integer overflow in IGMP protocol; pfSense-SA-15_03.webgui - multiple XSS vulnerabilities in the pfSense WebGUI; pfSense-SA-15_04.webgui - arbitrary file deletion vulnerability in the pfSense WebGUI; FreeBSD-EN-15:01.vt - vt(4) crash with improper ioctl parameters; FreeBSD-EN-15:02.openssl - update to include reliability fixes from OpenSSL. A note on the OpenSSL 'FREAK' vulnerability: does not affect the web server configuration on the firewall as it does not have export ciphers enabled. pfSense 2.2 already included OpenSSL 1.0.1k which addressed the client-side vulnerability. If packages include a web server or similar component, such as a proxy, an improper user configuration may be affected. Consult the package documentation or forum for details." See the complete release announcement for further information. Download: pfSense-LiveCD-2.2.1-RELEASE-amd64.iso.gz (83.1MB, SHA256), pfSense-LiveCD-2.2.1-RELEASE-i386.iso.gz (78.4MB, SHA256).

Chris Buechler has announced the release of pfSense 2.2, a major new update of the project's FreeBSD-based specialist operating system for firewalls and routers: "I'm happy to announce the release of pfSense software version 2.2. This release brings improvements in performance and hardware support from the FreeBSD 10.1 base, as well as enhancements we've added such as AES-GCM with AES-NI acceleration, among a number of other new features and bug fixes. In the process of reaching release, we've closed out 392 total tickets (this number includes 55 features or tasks), fixed 135 bugs affecting 2.1.5 and prior versions, fixed another 202 bugs introduced in 2.2 by advancing the base OS version from FreeBSD 8.3 to 10.1, changing IPsec keying daemons from racoon to strongSwan, upgrading the PHP backend to version 5.5 and switching it from FastCGI to PHP-FPM, and adding the Unbound DNS Resolver, and many smaller changes." Read the rest of the release announcement for a complete list of changes and new features. Download links: pfSense-LiveCD-2.2-RELEASE-amd64.iso.gz (84.2MB, SHA256), pfSense-LiveCD-2.2-RELEASE-i386.iso.gz (79.5MB, SHA256).

Jared Dillard has announced the release of pfSense 2.1.4, a free network firewall distribution based on FreeBSD: "2.1.4 follows very shortly after 2.1.3 and is primarily a security release. Packages also had their own independent fixes and need updating. During the firmware update process the packages will be re-installed properly. Otherwise, uninstall and then re-install packages to ensure that the latest version of the binaries is in use. Other fixes: patch for Captive Portal pipeno leaking issue which leads to the 'Maximum login reached' on Captive Portal; remove text not relevant to Allowed IPs on the Captive Portal; remove units from burst as it is always specified in bytes; add column for internal port on UPnP status page; make listening on interface rather than IP optional for UPnP...." See the release announcement and release notes for more details. Download: pfSense-LiveCD-2.1.4-RELEASE-amd64.iso.gz (92MB, SHA256).

Jim Thompson has announced the release of pfSense 2.1.1, a free network firewall distribution based on FreeBSD with a customised kernel and free third-party software packages for additional functionality: "I'm happy to announce the release of pfSense 2.1.1. The largest change is to close the following security issues / CVEs: FreeBSD-SA-14:01.bsnmpd / CVE-2014-1452; FreeBSD-SA-14:02.ntpd / CVE-2013-5211; FreeBSD-SA-14:03.openssl / CVE-2013-4353, CVE-2013-6449, CVE-2013-6450. Other than these, the em/igb/ixgb/ixgbe drivers have been upgraded to add support for i210 and i354 NICs. Some Intel 10Gb Ethernet NICs will also see improved performance." Follow the release announcement and the detailed release notes for further information. Download: pfSense-LiveCD-2.1.1-RELEASE-amd64.iso.gz (92MB, SHA256).

Chris Buechler has announced the release of pfSense 2.1, a free, open-source and customised distribution of FreeBSD tailored for use as a firewall and router: "I'm proud to announce the release of pfSense 2.1, and our new Gold subscription. The 2.1 book and our AutoConfigBackup service, available for years to support subscribers, are immediately available today to Gold subscribers. This release brings many new features, with the biggest change being IPv6 support in almost every portion of the system. There are also a number of bug fixes and touch-ups in general. Three FreeBSD security advisories are applicable to prior pfSense releases. These aren't remotely exploitable in and of themselves, but anyone who can execute arbitrary code on your firewall could use one or more of these to escalate privileges." See the detailed release announcement for a complete list of changes, new features, bug fixes and package updates. Download links: pfSense-LiveCD-2.1-RELEASE-amd64.iso.gz (90.4MB, SHA256), pfSense-LiveCD-2.1-RELEASE-i386.iso.gz (77.6MB, SHA256).

Chris Buechler has announced the release of pfSense 2.0.3, an updated version of the FreeBSD-based operating system for firewalls: "I'm happy to announce the release of pfSense 2.0.3. This is a maintenance release with some bug and security fixes since 2.0.2 release. You can upgrade from any previous release to 2.0.3. Changelog: updated to OpenSSL 0.9.8y; fix XSS in IPsec log possible from users possessing shared key or valid certificate; fix obtaining DNS servers from PPP type WANs (PPP, PPPoE, PPTP, L2TP); fix captive portal redirect URL trimming; voucher sync fixes; captive portal pruning/locking fixes; fix problem with fastcgi crashing which caused CP issues on 2.0.2; clear the route for an OpenVPN endpoint IP when restarting the VPN, to avoid a situation where a learned route from OSPF or elsewhere could prevent an instance from restarting properly...." See the detailed release announcement for a complete list of security and bug fixes. Download: pfSense-2.0.3-RELEASE-amd64.iso.gz (88.0MB, SHA256), pfSense-2.0.3-RELEASE-i386.iso.gz (76.6MB, SHA256).

Chris Buechler has announced the release of pfSense 2.0.2, an updated version of the project's specialist FreeBSD-based operating system for firewalls: "pfSense 2.0.2 is a maintenance release with some bug and security fixes since the 2.0.1 release. You can upgrade from any previous release to 2.0.2. Base OS updated to 8.1-RELEASE-p13 to address FreeBSD security advisories. Added a warning to PPTP VPN configuration page - PPTP is no longer considered a secure VPN technology because it relies upon MS-CHAPv2 which has been compromised. If you continue to use PPTP be aware that intercepted traffic can be decrypted by a third party, so it should be considered unencrypted. We advise migrating to another VPN type such as OpenVPN or IPsec. Fix reference to PPTP secondary RADIUS server shared secret. PPTP 1.x to 2.x configuration upgrade fixes." See the detailed release announcement for a complete list of security and bug fixes. Download: pfSense-2.0.2-RELEASE-i386.iso.gz (76.2MB, SHA256), pfSense-2.0.2-RELEASE-amd64.iso.gz (87.6MB, SHA256).

Chris Buechler has announced the release of pfSense 2.0.1, an updated version of the project's FreeBSD-based operating system for firewalls: "The pfSense 2.0.1 release is now available. This is a maintenance release with some bug and security fixes since the 2.0 release. This is the recommended release for all installations. As always, you can upgrade from any previous release to 2.0.1, so if you haven't upgraded to 2.0 yet, just upgrade straight to 2.0.1. For those who use the built-in certificate manager, pay close attention to the notes below on a potential security issue with those certificates. The following changes were made since 2.0 release: improved accuracy of automated state killing in various cases; various fixes and improvements to relayd...." Here is the brief release announcement. Download: pfSense-2.0.1-RELEASE-i386.iso.gz (97.9MB, SHA256), pfSense-2.0.1-RELEASE-amd64.iso.gz (110MB, SHA256).

Chris Buechler has announced the release of pfSense 2.0, a major new update of the specialist FreeBSD-based operating system designed for firewalls and gateways: "I am proud to announce the release of version 2.0. This brings the past three years of new feature additions, with significant enhancements to almost every portion of the system." Features and changes: "Based on FreeBSD 8.1-RELEASE; i386 and amd64 variants for all install types (full install, NanoBSD, embedded, etc.); USB memory stick installer images available; GRE and GIF tunnels; 3G support; multi-Link PPP (MLPPP) for bonding PPP connections; LAGG interfaces; IP Alias type Virtual IPs; IP Alias VIPs can be stacked on CARP VIPs to go beyond the 255 VHID limit in deployments that need very large numbers of CARP VIPs; QinQ VLANs; bridging enhancements - can now control all options of if_bridge, and assign bridge interfaces...." Read the release announcement and visit the features and changes page for more detailed information and upgrade instructions. Download: pfSense-2.0-RELEASE-i386.iso.gz (97.8MB, SHA256), pfSense-2.0-RELEASE-amd64.iso.gz (110MB, SHA256).

Chris Buechler has announced the availability of the third release candidate for pfSense 2.0, a FreeBSD-based operating system for firewalls: "I'm happy to announce what will likely be the final 2.0 release candidate, RC3, is now available. RC2 was a snapshots-only tag. The mirrors are currently syncing, with a few of them done already and the remaining will sync within the coming hours. There are considerably fewer open issues on 2.0 right now than there were on 1.2.3 when it was released, and no major outstanding problems. 2.0 has gotten widespread use in production environments over the last year plus including in our most critical networks, and looks to be ready for release. We expect final release within a month, and consider RC3 the preferred release for all new installs." Here is the full release announcement. Download: pfSense-2.0-RC3-i386.iso.gz (96.5MB, SHA256), pfSense-2.0-RC3-amd64.iso.gz (110MB, SHA256).

Chris Buechler has announced the availability of the first release candidate for pfSense 2.0, a FreeBSD-based operating system for firewalls: "Years and many thousands of hours in the making, pfSense 2.0 release candidate 1 is now available. This is considered a stable release suitable for production use, as we've already widely deployed it over the past several months in beta and upgraded numerous systems to RC1 over the weekend. This is the preferred version for new installations at this point. For existing 1.2.x users, upgrading will be a smooth process for most if not all scenarios. Some portions of the configuration are considerably different now than in 1.2.x releases, and we suspect there may be some configuration upgrade problems remaining, though we aren't aware of any specific issues at this time and have tested a wide variety of configurations." Read the release announcement and release notes for a full list of changes and new features. Download: pfSense-2.0-RC1-i386.iso.gz (95.6MB, SHA256), pfSense-2.0-RC1-amd64.iso.gz (109MB, SHA256).

Chris Buechler has announced the availability of the first beta release of pfSense 2.0, a FreeBSD-based firewall system: "Our Christmas gift to the community is the 2.0 release reaching the beta milestone. The release is feature complete, with no new features being added, and should stay relatively stable throughout the remainder of the development process. That's not to say it's production-ready though, most of our developers are using it in production and have been for months, but unless you have a solid understanding of the underlying system and can manually verify the configuration, 2.0 is not yet for you. If you have a non-critical environment where you can try it out, you can find the latest build on the snapshot server. Please report your experiences on the 2.0 board on the forum." Read the complete release announcement for further details and known issues. Download: pfSense-2.0-BETA1.iso.gz (75.6MB, SHA256).

Chris Buechler has released pfSense 1.2.3, a specialist firewall distribution based on FreeBSD: "pfSense 1.2.3 is now available! This is a maintenance release in the 1.2.x series, bringing an updated FreeBSD base, some minor enhancements, some bug fixes, and a couple of security updates. We have been waiting a few weeks in anticipation of a FreeBSD security advisory for the SSL/TLS renegotiation vulnerability, which came last week and allowed us to finalize the release. Change list: upgrade to FreeBSD 7.2; embedded edition switched to NanoBSD; dynamic interface bridging bug fix; IPsec connection reloading improvements; dynamic site-to-site IPsec; sticky connections enable and disable; ability to delete DHCP leases; polling fixed; ipfw state table size; UDP state timeout increases...." Read the rest of the release announcement for a complete list of changes and enhancements. Download: pfSense-1.2.3-RELEASE-LiveCD-Installer.iso.gz (55.2MB, MD5).

Chris Buechler has announced the availability of pfSense 1.2.2, a security and bug-fix release of the FreeBSD-based firewall system: "pfSense 1.2.2 released! Only five changes from 1.2.1, but we did want to get these issues fixed and an updated version out there: setup wizard fix - removing BigPond from the WAN page on the setup wizard caused problems; SVG graphs fixed in Google Chrome; IPsec reload fix specific to large (100+ sites) deployments; bridge creation code changes - there have always been issues when attempting to bridge more than two interfaces; FreeBSD updates for two security advisories on January 7, 2009. Most users on 1.2.1 won't have any need to upgrade to 1.2.2, but if any of the above applies to you, then upgrade to this version. 1.2.2 should be used for all new installs." Please refer to the release announcement for more information. Download: pfSense-1.2.2-LiveCD-Installer.iso (49.2MB, MD5).

pfSense 1.2.1, a maintenance and bug-fix update of the FreeBSD-based mini-firewall system, has been released: "The pfSense team has a Christmas present for you all - the 1.2.1 final release. The only changes since RC4: fixed problem preventing RIP from starting; fixed broken link in VLAN reboot notification; fixed problem with SSL certificate generation. This is a strictly a maintenance release, meaning it contains only bug fixes in the pfSense code, no new features. Though we also upgraded the base operating system from FreeBSD 6.2 to 7.0, which necessitated numerous changes in how things were configured. The change to FreeBSD 7.0 brings improved performance and more hardware support." Read the complete release announcement for further information. Download the installation CD from here: pfSense-1.2.1-LiveCD-Installer.iso (49.2MB, MD5).

Chris Buechler has announced the availability of the second release candidate for pfSense 1.2.1, a FreeBSD-based firewall system: "pfSense 1.2.1-RC2 is now available for testing. This is the first official release candidate of 1.2.1, and we believe it eliminates all regressions that have been found since the first 1.2.1 snapshots were made available four months ago. Plus it fixes several bugs in 1.2. The changes from the 1.2 release: numerous changes to accommodate differences in FreeBSD 7.0; multi-WAN bug fix; bridging bug fix - problem with the way firewall rules were being applied to bridging could lead to strange behavior in some bridging scenarios; captive portal bug fix - imported from m0n0wall, related to MAC authentication with RADIUS; keep state change - the newer pf version changed to defaulting to keep state; NAT reflection bug fix; mobile IPsec fixes...." Here is the full release announcement. Download: pfSense-1.2.1-RC2-LiveCD-Installer.iso (49.2MB, MD5).

Chris Buechler has announced the final release of pfSense 1.2, a small firewall based on FreeBSD: "The pfSense development team is proud to bring you the 1.2 release! This brings the features and bug fixes from more than 16 months of development since the 1.0 release. Already widely tested and deployed throughout the release candidate phase, this release provides the finishing touches on releases already proven in a wide range of network environments. The changes since RC4: Improve CARP input validation; clarify text and fix typos on several screens; revert DHCP client to default timeout of 60 seconds; reload static routes when an interface IP address is changed by an administrator; fix a few areas allowing potential cross site scripting; fix a couple issues with package uninstalls...." More info in the release announcement. Download: pfSense-1.2-LiveCD-Installer.iso (59.5MB, MD5).

pfSense, a firewall distribution based on FreeBSD, has reached the fourth and final release candidate for the new version 1.2: "The pfSense development team is happy to bring you the final release candidate in the 1.2 series. Summary of the changes since RC3: libc fix for a security advisory; do not ping other end of IPsec connections on CARP backup hosts; fix edit.php error when opening empty file; math fix on throughput graph; increase maximum alias count (99 to 299); captive portal locking improvements to fix issues in high load environments; IPsec stability fixes for large deployments; VLAN support for ALIX hardware; forced page refreshes removed from all pages; fix for display of wireless networks with a space in the SSID; updated PHP version...." Here is the full release announcement. Download: pfSense-1.2-RC4-LiveCD-Installer.iso.gz (50.7MB, MD5).

The third release candidate of pfSense (a small, FreeBSD-based firewall) is out and ready for testing: "1.2-RC3 has been released! Here are just a few of the new improvements and features that have made their way into this new version: IPSEC Carp rules cleanup; IPSEC stability workarounds for > 150 tunnels; do not allow sticky connection bit to be set if PPPoE is enabled; work around heavy network activity issues; bump lighttpd to 1.4.18; show wireless nodes regardless of whether we can determine BSS value; IPSEC tunnel endpoint highlighting in system logs; show the IPSEC interface as an option for the traffic graph; add RRD settings page; make it possible to disable RRD graphs; correctly set reflection timeout for all protocols; restart SNMP services after LAN IP changes..." See the release announcement for a complete list of changes. Download: pfSense-1.2-RC3-LiveCD-Installer.iso.gz (49.7MB, MD5).

The second release candidate of pfSense, a FreeBSD-based firewall, is ready for testing: "pfSense 1.2-RC2 has been released. Here are just a few of the new improvements and features that have made their way into this new version: automatically restarts racoon (ipsec-tools if it wedges); ensure CARP status page cache is cleared before load; updated lighttpd to 1.4.15; APC updated to 3.0.14; update to DNSMASQ 2.3.9; ensure that rules are cleared from UPNP when service is stopped; correctly show IPSEC firewall rules tab when Mobile IPSEC is enabled; quality graph miscellaneous alignments; backport show username on captive portal status screen; do not allow aliases named 'pptp'; TCP timeout time fixes." Read the complete changelog for full details. Download: pfSense-1.2-RC2-LiveCD-Installer.iso.gz (37.6MB, MD5).

Scott Ullrich has announced the second beta release of pfSense 1.2, a FreeBSD-based firewall: "1.2-BETA-2 has been released. Here are just a few of the new improvements and features that have made their way into this new version: advanced outbound NAT fixes; UPNP now works on live CD; miscellaneous log viewing fixes; password field lengths now line up on nervecenter theme; IPSEC now works correctly on CARP interfaces out of the box; routed hosts behind a policy-routed segment can now reach the LAN interface correctly when the anti-lockout rule is enabled; pfSync and CARP now will work correctly on extremely restrictive rulesets; captive portal images fixed...." Read the rest of the release announcement for full details. Download: pfSense-1.2-BETA-2-LiveCD-Installer.iso.gz (27.6MB, MD5).

The first beta of the FreeBSD-based pfSense firewall is ready for testing: "pfSense 1.2-BETA-1 has been released! Here are just a few of the new improvements and features that have made their way into this new version: FreeBSD updated to 6.2; reworked load balancing pools which allow for round robin or failover; miniupnpd has proven to work so well that it is now in the base install but deactivated by default; much enhanced RRD graphs; numerous Squid package fixes; PPTP server includes WINS server settings correctly now; general OpenVPN stability improvements; 'Nervecenter' theme added as default; captive portal now allows traffic to port 8000 and 8001 behind the scenes; multiple miscellaneous pf rule fixes to prevent broken rulesets...." Read the rest of the release announcement for more details. Download: pfSense-1.2-BETA-1-LiveCD-Installer.iso.gz (27.6MB, MD5).

A bug-fix update to the recently released pfSense 1.0, a FreeBSD-based firewall distribution, is out: "1.0.1 is now making its way to the mirrors and here is a rundown of the bugs fixed: set maximum cache size for APC to 7 MB; re-start 'check reload status' if it exits; miscellaneous syslog.conf fixes; Snort now blocks traffic correctly; PF does not know about congestion flags, remove from shaper; miscellaneous OpenNTPD system logging tab fixes; removes states from a user when disconnected by Captive Portal; fix FTP helper when strict LAN or Optional LAN rules are in place; ZoneEdit now works; filter reloads rules correctly after changes; faster, snappier webConfigurator and console." Here is the full release announcement. Download: pfSense-1.0.1-LiveCD-Installer.iso.gz (26.3MB, MD5).

The first stable build of pfSense, a m0n0wall-inspired, FreeBSD-based firewall system, has been released: "The pfSense team is excited to bring you our first ever real release! That is right, 1.0 is finally blessed and is making its way to the mirrors now. We have tried really hard to eliminate all bugs but with any software we expect to find some as this release will be used by a lot more people. With that said, there are a few problems that you should be aware of. Check this Wiki article to see the release caveats. Other than the few small items mentioned in the above Wiki article 1.0 is solid and performs quite well. We are rather proud of our work. So grab 1.0 and install it this weekend and head over to our forum and post your experiences, good or bad." Here is the brief release announcement. Download: pfSense-LiveCD-1.0-RELEASE-Installer.iso (33.6MB, MD5).

3CX Phone System is a specialist, Debian-based Linux distribution designed to run a complete unified communications platform. The 3CX client, included in the distribution, can also be installed separately on most hardware as well as the cloud. It provides a complete open standards-based IP PBX and phone system that works with popular SIP trunks and IP phones. It will automatically configure all supported peripherals and it also comes with clients for Windows, OS X, iOS and Android. The ISO image includes a free license for the 3CX PBX edition. The ISO images contains the standard Debian installer which installs a minimal system with the nginx web server, PostgreSQL database, iptables firewall and Secure Shell. Options not relevant to 3CX have been removed form the distribution. Download the installation ISO image from here: debian-8.6.0-amd64-netinst-3cx.iso (246MB).

For complete privacy and anonymity on your desktop computers and mobile devices, use a personal VPN from Private Internet Access, the award-winning, no logs VPN service named PC Mag.com Editors' Choice.